Stefan Cornelius discovered a buffer overflow in devil, a cross-platform
image loading and manipulation toolkit, which could be triggered via a
crafted Radiance RGBE file. This could potentially lead to the execution
of arbitrary code.

For the stable distribution (etch), this problem has been fixed in
version 1.6.7-5+etch1.

For the testing distribution (lenny), this problem has been fixed in
version 1.6.8-rc2-3+lenny1.

For the unstable distribution (sid), this problem has been fixed in
version 1.7.5-4.